dojo/request CORS documentation

Description

In following the common practice of setting the "X-Requested-With" header field on all XHRs, dojo/request sort of sabotages CORS requests by triggering them to all require preflighting. It's up to the developer to prevent this by manually clearing the "X-Requested-With" header field when crafting the request.